250 lines
4.5 KiB
Django/Jinja
250 lines
4.5 KiB
Django/Jinja
LogFile /var/log/clamav/clamd.log
|
|
LogFileUnlock no
|
|
LogFileMaxSize 2M
|
|
LogTime yes
|
|
LogClean no
|
|
LogSyslog no
|
|
LogFacility LOG_LOCAL6
|
|
LogVerbose no
|
|
LogRotate no
|
|
PreludeEnable no
|
|
PreludeAnalyzerName ClamAV
|
|
ExtendedDetectionInfo yes
|
|
TemporaryDirectory /tmp
|
|
DatabaseDirectory /var/lib/clamav
|
|
OfficialDatabaseOnly no
|
|
#FailIfCvdOlderThan 7
|
|
|
|
User clamav
|
|
# Default: disabled (must be specified by a user)
|
|
LocalSocket /var/run/clamav/clamd.sock
|
|
#LocalSocket /tmp/clamd.sock
|
|
# Default: disabled (the primary group of the user running clamd)
|
|
LocalSocketGroup clamav
|
|
# Default: disabled (socket is world accessible)
|
|
#LocalSocketMode 660
|
|
#FixStaleSocket yes
|
|
|
|
# Default: no
|
|
#TCPSocket 3310
|
|
# Default: no
|
|
#TCPAddr localhost
|
|
# Default: 200
|
|
#MaxConnectionQueueLength 30
|
|
# Default: 100M
|
|
#StreamMaxLength 25M
|
|
# Default: 1024
|
|
#StreamMinPort 30000
|
|
# Default: 2048
|
|
#StreamMaxPort 32000
|
|
# Default: 10
|
|
#MaxThreads 20
|
|
# Default: 120
|
|
#ReadTimeout 300
|
|
CommandReadTimeout 30
|
|
# Default: 500
|
|
#SendBufTimeout 200
|
|
|
|
# Maximum number of queued items (including those being processed by
|
|
# MaxThreads threads).
|
|
# It is recommended to have this value at least twice MaxThreads if possible.
|
|
# WARNING: you shouldn't increase this too much to avoid running out of file
|
|
# descriptors, the following condition should hold:
|
|
# MaxThreads*MaxRecursion + (MaxQueue - MaxThreads) + 6< RLIMIT_NOFILE (usual
|
|
# max is 1024).
|
|
#
|
|
# Default: 100
|
|
#MaxQueue 200
|
|
|
|
# Default: 30
|
|
#IdleTimeout 60
|
|
# Default: scan all
|
|
ExcludePath ^/proc/
|
|
ExcludePath ^/sys/
|
|
MaxDirectoryRecursion 20
|
|
# Default: no
|
|
#FollowDirectorySymlinks yes
|
|
# Default: no
|
|
#FollowFileSymlinks yes
|
|
CrossFilesystems yes
|
|
SelfCheck 600
|
|
# Default: yes
|
|
#ConcurrentDatabaseReload no
|
|
# Default: no
|
|
#VirusEvent /usr/local/bin/send_sms 123456789 "VIRUS ALERT: %v in %f"
|
|
#ExitOnOOM yes
|
|
# Default: no
|
|
#Foreground yes
|
|
# Default: no
|
|
#Debug yes
|
|
# Default: no
|
|
#LeaveTemporaryFiles yes
|
|
# Default: no
|
|
#GenerateMetadataJson yes
|
|
# Default: yes
|
|
#AllowAllMatchScan no
|
|
DetectPUA yes
|
|
# Default: Load all categories (if DetectPUA is activated)
|
|
ExcludePUA Tool
|
|
ForceToDisk no
|
|
# Default: no
|
|
#DisableCache yes
|
|
#CacheSize 65536
|
|
HeuristicAlerts yes
|
|
# Default: no
|
|
#HeuristicScanPrecedence yes
|
|
|
|
##
|
|
## Heuristic Alerts
|
|
##
|
|
# Default: no
|
|
#AlertBrokenExecutables yes
|
|
# Default: no
|
|
#AlertBrokenMedia yes
|
|
# Default: no
|
|
#AlertEncrypted yes
|
|
# Default: no
|
|
#AlertEncryptedArchive yes
|
|
# Default: no
|
|
#AlertEncryptedDoc yes
|
|
# Default: no
|
|
AlertOLE2Macros yes
|
|
# Default: no
|
|
#AlertPhishingSSLMismatch yes
|
|
# Default: no
|
|
#AlertPhishingCloak yes
|
|
# Default: no
|
|
#AlertPartitionIntersection yes
|
|
|
|
##
|
|
## Executable files
|
|
##
|
|
# Default: yes
|
|
ScanPE yes
|
|
# Default: no
|
|
#DisableCertCheck yes
|
|
# Default: yes
|
|
ScanELF yes
|
|
|
|
##
|
|
## Documents
|
|
##
|
|
ScanOLE2 yes
|
|
ScanPDF yes
|
|
ScanSWF yes
|
|
ScanXMLDOCS yes
|
|
ScanHWP3 yes
|
|
|
|
##
|
|
## Mail files
|
|
##
|
|
ScanMail yes
|
|
# Default: no
|
|
#ScanPartialMessages yes
|
|
PhishingSignatures yes
|
|
PhishingScanURLs yes
|
|
|
|
##
|
|
## Data Loss Prevention (DLP)
|
|
##
|
|
# Default: No
|
|
#StructuredDataDetection yes
|
|
# Default: 3
|
|
StructuredMinCreditCardCount 5
|
|
# Default: no
|
|
#StructuredCCOnly yes
|
|
# Default: 3
|
|
StructuredMinSSNCount 5
|
|
StructuredSSNFormatNormal yes
|
|
StructuredSSNFormatStripped yes
|
|
|
|
##
|
|
## HTML
|
|
##
|
|
ScanHTML yes
|
|
|
|
##
|
|
## Archives
|
|
##
|
|
ScanArchive yes
|
|
|
|
##
|
|
## Limits
|
|
##
|
|
# Default: 120000
|
|
#MaxScanTime 300000
|
|
# Default: 400M
|
|
MaxScanSize 500M
|
|
# Default: 100M
|
|
MaxFileSize 400M
|
|
# Default: 17
|
|
#MaxRecursion 10
|
|
# Default: 10000
|
|
#MaxFiles 15000
|
|
# Default: 40M
|
|
MaxEmbeddedPE 80M
|
|
# Default: 40M
|
|
#MaxHTMLNormalize 100M
|
|
# Default: 8M
|
|
#MaxHTMLNoTags 16M
|
|
# Default: 20M
|
|
#MaxScriptNormalize 50M
|
|
# Default: 1M
|
|
#MaxZipTypeRcg 1M
|
|
# Default: 50
|
|
#MaxPartitions 128
|
|
# Default: 100
|
|
#MaxIconsPE 200
|
|
# Default: 16
|
|
#MaxRecHWP3 16
|
|
# Default: 100000
|
|
#PCREMatchLimit 20000
|
|
# Default: 2000
|
|
#PCRERecMatchLimit 10000
|
|
# Default: 100M
|
|
#PCREMaxFileSize 400M
|
|
# Default: no
|
|
AlertExceedsMax yes
|
|
|
|
##
|
|
## On-access Scan Settings
|
|
##
|
|
# Default: 5M
|
|
#OnAccessMaxFileSize 10M
|
|
# Default: 5
|
|
#OnAccessMaxThreads 10
|
|
# Default: 5000 (5 seconds)
|
|
# OnAccessCurlTimeout 10000
|
|
# Default: no
|
|
#OnAccessDisableDDD yes
|
|
# Default: disabled
|
|
#OnAccessIncludePath /home
|
|
#OnAccessIncludePath /students
|
|
# Default: disabled
|
|
#OnAccessExcludePath /home/user
|
|
# Default: no
|
|
OnAccessPrevention yes
|
|
# Default: no
|
|
#OnAccessDenyOnError yes
|
|
# Default: no
|
|
#OnAccessExtraScanning yes
|
|
# Default: disabled
|
|
#OnAccessMountPath /
|
|
#OnAccessMountPath /home/user
|
|
# Default: no
|
|
#OnAccessExcludeRootUID no
|
|
# Default: disabled
|
|
#OnAccessExcludeUID -1
|
|
# Default: disabled
|
|
OnAccessExcludeUname clamav
|
|
# Default: 0
|
|
#OnAccessRetryAttempts 3
|
|
|
|
##
|
|
## Bytecode
|
|
##
|
|
Bytecode yes
|
|
BytecodeSecurity TrustSigned
|
|
BytecodeUnsigned no
|
|
# Default: 10000
|
|
# BytecodeTimeout 1000
|